The main compliance frameworks are the NIST 800-53 and the NIST 800-171. The NIST 800-53 applies to all organizations that design information systems for the federal government. On the other hand, the NIST 800-171 applies to all federal contractors and subcontractors.
Our NIST assessment include the following;
Gap analysis process designed to discover any policy or process inadequacy and provide easier remediation
System security plan that defines the security measures needed to limit unauthorized user access
A plan of action (POA) that defines the actions needed to achieve compliance and the amount it should take
demonstrate the visual form of a document